$encoding = '', $size = 0, $to = array(), $from = '', $date = '',
$cc = array(), $bcc = array(), $reply_to = '', $subject = '',
$id = 0, $mailbox = '', $description = '', $filename = '',
- $entity_id = 0, $message_id = 0, $name = '', $priority = 3;
+ $entity_id = 0, $message_id = 0, $name = '', $priority = 3, $type = '';
}
class message {
*/
function mime_structure ($imap_stream, $header) {
- sqimap_messages_flag ($imap_stream, $header->id, $header->id, 'Seen');
$ssid = sqimap_session_id();
$lsid = strlen( $ssid );
$id = $header->id;
// isolate the body structure and remove beginning and end parenthesis
$read = trim(substr ($read, strpos(strtolower($read), 'bodystructure') + 13));
+
$read = trim(substr ($read, 0, -1));
$end = mime_match_parenthesis(0, $read);
while ($end == strlen($read)-1) {
* to mime_get_elements()
*/
function mime_parse_structure ($structure, $ent_id) {
-
+ $properties = array();
$msg = new message();
if ($structure{0} == '(') {
+ $old_ent_id = $ent_id;
$ent_id = mime_new_element_level($ent_id);
$start = $end = -1;
do {
$start = $end+1;
$end = mime_match_parenthesis ($start, $structure);
+ /* add "forgotten" parent entities (alternative and relative) */
+ if (strpos($ent_id, '0') || strpos($ent_id, '0') == 0) {
+ $str = substr($structure, $end+1 );
+ $startprop = strrpos($str,'(');
+ $endprop = strrpos($str,')');
+ $propstr = substr($str, $startprop + 1, ($endprop - $startprop)-1);
+
+ $type1 = trim(substr($str,0, $startprop));
+ $pos = strrpos($type1,' ');
+ $type1 = strtolower(trim(substr($type1,$pos +1)));
+ $cnt = strlen($type1);
+ $type1 = substr($type1,0,$cnt-1);
+
+ $properties = mime_get_props($properties, $propstr);
+ if (count($properties)>0) {
+ $msg->header->entity_id = $old_ent_id;
+ $msg->header->type0 = 'multipart';
+ $msg->header->type1 = $type1;
+ }
+ for ($i=0; $i < count($properties); $i++) {
+ $msg->header->{$properties[$i]['name']} = $properties[$i]['value'];
+ $name = $properties[$i]['name'];
+ $value = $properties[$i]['value'];
+ }
+ }
$element = substr($structure, $start+1, ($end - $start)-1);
+
$ent_id = mime_increment_id ($ent_id);
$newmsg = mime_parse_structure ($element, $ent_id);
$msg->addEntity ($newmsg);
+
} while ($structure{$end+1} == '(');
} else {
// parse the elements
- $msg = mime_get_element ($structure, $msg, $ent_id);
+ $msg = mime_get_element ($structure, $msg, $ent_id);
}
return $msg;
}
$msg->header = new msg_header();
$msg->header->entity_id = $ent_id;
$properties = array();
-
while (strlen($structure) > 0) {
$structure = trim($structure);
$char = $structure{0};
$text = "";
}
// loop through the additional properties and put those in the various headers
- if ($msg->header->type0 != 'message') {
- for ($i=0; $i < count($properties); $i++) {
- $msg->header->{$properties[$i]['name']} = $properties[$i]['value'];
- }
+ for ($i=0; $i < count($properties); $i++) {
+ $msg->header->{$properties[$i]['name']} = $properties[$i]['value'];
}
return $msg;
while (strlen($structure) > 0) {
$structure = trim($structure);
$char = $structure{0};
-
if ($char == '"') {
$pos = 1;
$tmp = '';
$value .= $char;
$pos++;
}
- $structure = trim(substr($structure, strlen($tmp) + 2));
-
+ $structure = trim(substr($structure, strlen($value) + 2));
$k = count($props);
$props[$k]['name'] = strtolower($tmp);
$props[$k]['value'] = $value;
+ if ($structure != '') {
+ mime_get_props($props, $structure);
+ } else {
+ return $props;
+ }
} else if ($char == '(') {
$end = mime_match_parenthesis (0, $structure);
$sub = substr($structure, 1, $end-1);
- if (! isset($props))
- $props = array();
- $props = mime_get_props($props, $sub);
- $structure = substr($structure, strlen($sub) + 2);
+ if (! isset($props))
+ $props = array();
+ $props = mime_get_props($props, $sub);
+ $structure = substr($structure, strlen($sub) + 2);
+ return $props;
}
- return $props;
} else if ($char == '(') {
$end = mime_match_parenthesis (0, $structure);
$sub = substr($structure, 1, $end-1);
$data = sqimap_run_command ($imap_stream, $cmd, true, $response, $message);
do {
- $topline = array_shift( $data );
- } while( $topline && $topline == '*' && !preg_match( '/\\* [0-9] FETCH.*/i', $topline )) ;
+ $topline = trim(array_shift( $data ));
+ } while( $topline && $topline[0] == '*' && !preg_match( '/\* [0-9]+ FETCH.*/i', $topline )) ;
$wholemessage = implode('', $data);
if (ereg('\\{([^\\}]*)\\}', $topline, $regs)) {
*/
if ( $ret{0} == '<' ) {
$data = sqimap_run_command ($imap_stream, "FETCH $id BODY[$ent_id.MIME]", true, $response, $message);
- $base = '';
- $k = 10;
- foreach( $data as $d ) {
- if ( substr( $d, 0, 13 ) == 'Content-Base:' ) {
- $j = strlen( $d );
- $i = 13;
- $base = '';
- while ( $i < $j &&
- ( !isNoSep( $d{$i} ) || $d{$i} == '"' ) )
- $i++;
- while ( $i < $j ) {
- if ( isNoSep( $d{$i} ) )
- $base .= $d{$i};
- $i++;
- }
- $k = 0;
- } elseif ( $k == 1 && !isnosep( $d{0} ) ) {
- $base .= substr( $d, 1 );
- }
- $k++;
- }
- if ( $base <> '' ) {
- $ret = "<base href=\"$base\">" . $ret;
- }
+ /* BASE within HTML documents is illegal (see w3 spec)
+* $base = '';
+* $k = 10;
+* foreach( $data as $d ) {
+* if ( substr( $d, 0, 13 ) == 'Content-Base:' ) {
+* $j = strlen( $d );
+* $i = 13;
+* $base = '';
+* while ( $i < $j &&
+* ( !isNoSep( $d{$i} ) || $d{$i} == '"' ) )
+* $i++;
+* while ( $i < $j ) {
+* if ( isNoSep( $d{$i} ) )
+* $base .= $d{$i};
+* $i++;
+* }
+* $k = 0;
+* } elseif ( $k == 1 && !isnosep( $d{0} ) ) {
+* $base .= substr( $d, 1 );
+* }
+* $k++;
+* }
+* if ( $base <> '' ) {
+* $ret = "<base href=\"$base\">" . $ret;
+* }
+* */
}
} else if (ereg('"([^"]*)"', $topline, $regs)) {
$ret = $regs[1];
} else {
global $where, $what, $mailbox, $passed_id, $startMessage;
- $par = 'mailbox=' . urlencode($mailbox) . "&passed_id=$passed_id";
+ $par = 'mailbox=' . urlencode($mailbox) . "&passed_id=$passed_id";
if (isset($where) && isset($what)) {
- $par .= '&where='. urlencode($where) . "&what=" . urlencode($what);
+ $par .= '&where='. urlencode($where) . "&what=" . urlencode($what);
} else {
- $par .= "&startMessage=$startMessage&show_more=0";
+ $par .= "&startMessage=$startMessage&show_more=0";
}
- $par .= '&response=' . urlencode($response) .
- '&message=' . urlencode($message).
- '&topline=' . urlencode($topline);
+ $par .= '&response=' . urlencode($response) .
+ '&message=' . urlencode($message).
+ '&topline=' . urlencode($topline);
echo '<tt><br>' .
'<table width="80%"><tr>' .
// This is here for debugging purposese. It will print out a list
// of all the entity IDs that are in the $message object.
-/*
+
function listEntities ($message) {
if ($message) {
if ($message->header->entity_id)
}
}
}
-*/
+
/* returns a $message object for a particular entity id */
function getEntity ($message, $ent_id) {
if ($message) {
- if ($message->header->entity_id == $ent_id && strlen($ent_id) == strlen($message->header->entity_id)) {
+ if ($message->header->entity_id == $ent_id && strlen($ent_id) == strlen($message->header->entity_id))
+ {
return $message;
} else {
for ($i = 0; isset($message->entities[$i]); $i++) {
$msg = getEntity ($message->entities[$i], $ent_id);
if ($msg) {
return $msg;
- }
+ }
}
}
}
* figures out what entity to display and returns the $message object
* for that entity.
*/
-function findDisplayEntity ($message, $textOnly = 1) {
+function findDisplayEntity ($msg, $textOnly = 1) {
global $show_html_default;
$entity = 0;
- if ($message) {
- if ( $message->header->type0 == 'multipart' &&
- ( $message->header->type1 == 'alternative' ||
- $message->header->type1 == 'related' ) &&
+ if ($msg) {
+ if ( $msg->header->type0 == 'multipart' &&
+ ( $msg->header->type1 == 'alternative' ||
+ $msg->header->type1 == 'mixed' ||
+ $msg->header->type1 == 'related' ) &&
$show_html_default && ! $textOnly ) {
- $entity = findDisplayEntityHTML($message);
+ $entity = findDisplayEntityHTML($msg);
}
-
+
// Show text/plain or text/html -- the first one we find.
if ( $entity == 0 &&
- $message->header->type0 == 'text' &&
- ( $message->header->type1 == 'plain' ||
- $message->header->type1 == 'html' ) &&
- isset($message->header->entity_id) ) {
- $entity = $message->header->entity_id;
+ $msg->header->type0 == 'text' &&
+ ( $msg->header->type1 == 'plain' ||
+ $msg->header->type1 == 'html' ) &&
+ isset($msg->header->entity_id) ) {
+ $entity = $msg->header->entity_id;
}
$i = 0;
- while ($entity == 0 && isset($message->entities[$i]) ) {
- $entity = findDisplayEntity($message->entities[$i], $textOnly);
+ while ($entity == 0 && isset($msg->entities[$i]) ) {
+ $entity = findDisplayEntity($msg->entities[$i], $textOnly);
$i++;
}
}
return $message->header->entity_id;
}
for ($i = 0; isset($message->entities[$i]); $i ++) {
+ if ( $message->header->type0 == 'message' &&
+ $message->header->type1 == 'rfc822' &&
+ isset($message->header->entity_id)) {
+ return 0;
+ }
$entity = findDisplayEntityHTML($message->entities[$i]);
if ($entity != 0) {
return $entity;
}
}
-
+
return 0;
}
+/*
+ * translateText
+ * Extracted from strings.php 23/03/2002
+ */
+
+function translateText(&$body, $wrap_at, $charset) {
+ global $where, $what; /* from searching */
+ global $color; /* color theme */
+
+ require_once('../functions/url_parser.php');
+
+ $body_ary = explode("\n", $body);
+ $PriorQuotes = 0;
+ for ($i=0; $i < count($body_ary); $i++) {
+ $line = $body_ary[$i];
+ if (strlen($line) - 2 >= $wrap_at) {
+ sqWordWrap($line, $wrap_at);
+ }
+ $line = charset_decode($charset, $line);
+ $line = str_replace("\t", ' ', $line);
+
+ parseUrl ($line);
+
+ $Quotes = 0;
+ $pos = 0;
+ $j = strlen( $line );
+
+ while ( $pos < $j ) {
+ if ($line[$pos] == ' ') {
+ $pos ++;
+ } else if (strpos($line, '>', $pos) === $pos) {
+ $pos += 4;
+ $Quotes ++;
+ } else {
+ break;
+ }
+ }
+
+ if ($Quotes > 1) {
+ if (! isset($color[14])) {
+ $color[14] = '#FF0000';
+ }
+ $line = '<FONT COLOR="' . $color[14] . '">' . $line . '</FONT>';
+ } elseif ($Quotes) {
+ if (! isset($color[13])) {
+ $color[13] = '#800000';
+ }
+ $line = '<FONT COLOR="' . $color[13] . '">' . $line . '</FONT>';
+ }
+
+ $body_ary[$i] = $line;
+ }
+ $body = '<pre>' . implode("\n", $body_ary) . '</pre>';
+}
+
+/* debugfunction for looping through entities and displaying correct entities */
+function listMyEntities ($message) {
+
+if ($message) {
+ if ($message->header->entity_id) {
+ echo "<tt>" . $message->header->entity_id . ' : ' . $message->header->type0 . '/' . $message->header->type1 . '<br>';
+ }
+ if (!($message->header->type0 == 'message' && $message->header->type1 == 'rfc822')) {
+ if (isset($message->header->boundary) ) {
+ $ent_id = $message->header->entity_id;
+ $var = $message->header->boundary;
+ if ($var !='')
+ echo "<b>$ent_id boundary = $var</b><br>";
+ }
+ if (isset($message->header->type) ) {
+ $var = $message->header->type;
+ if ($var !='')
+ echo "<b>$ent_id type = $var</b><br>";
+ }
+ for ($i = 0; $message->entities[$i]; $i++) {
+ $msg = listMyEntities($message->entities[$i]);
+ }
+
+ if ($msg ) return $msg;
+ }
+}
+
+}
+
+
+
/* This returns a parsed string called $body. That string can then
be displayed as the actual message in the HTML. It contains
everything needed, including HTML Tags, Attachments at the
// this if statement checks for the entity to show as the
// primary message. To add more of them, just put them in the
// order that is their priority.
- global $startMessage, $username, $key, $imapServerAddress, $imapPort,
- $show_html_default;
-
+ global $startMessage, $username, $key, $imapServerAddress, $imapPort, $body,
+ $show_html_default, $has_unsafe_images, $view_unsafe_images, $sort;
+
+ $has_unsafe_images = 0;
+
$id = $message->header->id;
+
$urlmailbox = urlencode($message->header->mailbox);
-
+// ListMyEntities($message);
// Get the right entity and redefine message to be this entity
// Pass the 0 to mean that we want the 'best' viewable one
$ent_num = findDisplayEntity ($message, 0);
$body_message = getEntity($message, $ent_num);
if (($body_message->header->type0 == 'text') ||
($body_message->header->type0 == 'rfc822')) {
-
$body = mime_fetch_body ($imap_stream, $id, $ent_num);
$body = decodeBody($body, $body_message->header->encoding);
$hookResults = do_hook("message_body", $body);
$body = $hookResults[1];
-
// If there are other types that shouldn't be formatted, add
// them here
if ($body_message->header->type1 == 'html') {
translateText($body, $wrap_at, $body_message->header->charset);
}
- $body .= "<SMALL><CENTER><A HREF=\"../src/download.php?absolute_dl=true&passed_id=$id&passed_ent_id=$ent_num&mailbox=$urlmailbox&showHeaders=1\">". _("Download this as a file") ."</A></CENTER><BR></SMALL>";
+ $body .= "<CENTER><SMALL><A HREF=\"../src/download.php?absolute_dl=true&passed_id=$id&passed_ent_id=$ent_num&mailbox=$urlmailbox&showHeaders=1\">". _("Download this as a file") ."</A></SMALL></CENTER><BR>";
+ if ($has_unsafe_images) {
+ if ($view_unsafe_images) {
+ $body .= "<CENTER><SMALL><A HREF=\"read_body.php?passed_id=$id&mailbox=$urlmailbox&sort=$sort&startMessage=$startMessage&show_more=0\">". _("Hide Unsafe Images") ."</A></SMALL></CENTER><BR>\n";
+ } else {
+ $body .= "<CENTER><SMALL><A HREF=\"read_body.php?passed_id=$id&mailbox=$urlmailbox&sort=$sort&startMessage=$startMessage&show_more=0&view_unsafe_images=1\">". _("View Unsafe Images") ."</A></SMALL></CENTER><BR>\n";
+ }
+ }
/** Display the ATTACHMENTS: message if there's more than one part **/
- $body .= "</TD></TR></TABLE>";
if (isset($message->entities[0])) {
$body .= formatAttachments ($message, $ent_num, $message->header->mailbox, $id);
}
- $body .= "</TD></TR></TABLE>";
} else {
$body = formatAttachments ($message, -1, $message->header->mailbox, $id);
}
"</TABLE></TD></TR></TABLE>";
} else if ($message) {
+ $header = $message->header;
+ $type0 = strtolower($header->type0);
+ $type1 = strtolower($header->type1);
+ $name = '';
+ if (isset($header->name)) {
+ $name = decodeHeader($header->name);
+ }
+ if ($type0 =='message' && $type1 == 'rfc822') {
+
+ $filename = decodeHeader($message->header->filename);
+ if (trim($filename) == '') {
+ if (trim($name) == '') {
+ $display_filename = 'untitled-[' . $message->header->entity_id . ']' ;
+ } else {
+ $display_filename = $name;
+ $filename = $name;
+ }
+ } else {
+ $display_filename = $filename;
+ }
- if (!$message->entities) {
+ $urlMailbox = urlencode($mailbox);
+ $ent = urlencode($message->header->entity_id);
+
+ $DefaultLink =
+ "../src/download.php?startMessage=$startMessage&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
+ if ($where && $what) {
+ $DefaultLink .= '&where=' . urlencode($where) . '&what=' . urlencode($what);
+ }
+ $Links['download link']['text'] = _("download");
+ $Links['download link']['href'] =
+ "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
+ $ImageURL = '';
+
+ /* this executes the attachment hook with a specific MIME-type.
+ * if that doens't have results, it tries if there's a rule
+ * for a more generic type. */
+ $HookResults = do_hook("attachment $type0/$type1", $Links,
+ $startMessage, $id, $urlMailbox, $ent, $DefaultLink, $display_filename, $where, $what);
+ if(count($HookResults[1]) <= 1) {
+ $HookResults = do_hook("attachment $type0/*", $Links,
+ $startMessage, $id, $urlMailbox, $ent, $DefaultLink,
+ $display_filename, $where, $what);
+ }
+
+ $Links = $HookResults[1];
+ $DefaultLink = $HookResults[6];
+
+ $body .= '<TR><TD> </TD><TD>' .
+ "<A HREF=\"$DefaultLink\">$display_filename</A> </TD>" .
+ '<TD><SMALL><b>' . show_readable_size($message->header->size) .
+ '</b> </small></TD>' .
+ "<TD><SMALL>[ $type0/$type1 ] </SMALL></TD>" .
+ '<TD><SMALL>';
+ if ($message->header->description) {
+ $body .= '<b>' . htmlspecialchars(_($message->header->description)) . '</b>';
+ }
+ $body .= '</SMALL></TD><TD><SMALL> ';
+
+
+ $SkipSpaces = 1;
+ foreach ($Links as $Val) {
+ if ($SkipSpaces) {
+ $SkipSpaces = 0;
+ } else {
+ $body .= ' | ';
+ }
+ $body .= '<a href="' . $Val['href'] . '">' . $Val['text'] . '</a>';
+ }
+
+ unset($Links);
+
+ $body .= "</SMALL></TD></TR>\n";
+
+ return( $body );
+
+ } elseif (!$message->entities) {
$type0 = strtolower($message->header->type0);
$type1 = strtolower($message->header->type1);
$ent = urlencode($message->header->entity_id);
$DefaultLink =
- "../src/download.php?startMessage=$startMessage&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
+ "../src/download.php?startMessage=$startMessage&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
if ($where && $what) {
- $DefaultLink .= '&where=' . urlencode($where) . '&what=' . urlencode($what);
+ $DefaultLink .= '&where=' . urlencode($where) . '&what=' . urlencode($what);
}
$Links['download link']['text'] = _("download");
$Links['download link']['href'] =
- "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
+ "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
$ImageURL = '';
/* this executes the attachment hook with a specific MIME-type.
/*
* This functions decode strings that is encoded according to
* RFC1522 (MIME Part Two: Message Header Extensions for Non-ASCII Text).
+ * Patched by Christian Schmidt <christian@ostenfeld.dk> 23/03/2002
*/
function decodeHeader ($string, $utfencode=true) {
+ if (is_array($string)) {
+ $string = implode("\n", $string);
+ }
+ $i = 0;
+ while (preg_match('/^(.{' . $i . '})(.*)=\?([^?]*)\?(Q|B)\?([^?]*)\?=/Ui',
+ $string, $res)) {
+ $prefix = $res[1];
+ // Ignore white-space between consecutive encoded-words
+ if (strspn($res[2], " \t") != strlen($res[2])) {
+ $prefix .= $res[2];
+ }
-if ( is_array( $string ) ) {
- $string = implode("\n", $string );
-}
-
-if (eregi('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
- $string, $res)) {
- if (ucfirst($res[2]) == 'B') {
- $replace = base64_decode($res[3]);
- } else {
- $replace = str_replace('_', ' ', $res[3]);
- // Convert lowercase Quoted Printable to uppercase for
- // quoted_printable_decode to understand it.
- while (ereg("(=(([0-9][abcdef])|([abcdef][0-9])|([abcdef][abcdef])))",
- $replace, $res)) {
- $replace = str_replace($res[1], strtoupper($res[1]), $replace);
+ if (ucfirst($res[4]) == 'B') {
+ $replace = base64_decode($res[5]);
+ } else {
+ $replace = str_replace('_', ' ', $res[5]);
+ $replace = preg_replace('/=([0-9a-f]{2})/ie', 'chr(hexdec("\1"))',
+ $replace);
+ /* Only encode into entities by default. Some places
+ don't need the encoding, like the compose form. */
+ if ($utfencode) {
+ $replace = charset_decode($res[3], $replace);
+ }
}
- $replace = quoted_printable_decode($replace);
+ $string = $prefix . $replace . substr($string, strlen($res[0]));
+ $i = strlen($prefix) + strlen($replace);
}
- /* Only encode into entities by default. Some places
- don't need the encoding, like the compose form. */
- if ($utfencode){
- $replace = charset_decode ($res[1], $replace);
- }
-
- // Remove the name of the character set.
- $string = eregi_replace ('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
- $replace, $string);
-
- // In case there should be more encoding in the string: recurse
- $string = decodeHeader($string);
-}
-
-return ($string);
+ return( $string );
}
/*
$pos = $i + 1;
$tag = '';
while ($body{$pos} == ' ' || $body{$pos} == "\t" ||
- $body{$pos} == "\n" ) {
+ $body{$pos} == "\n") {
$pos ++;
}
while (strlen($tag) < 4 && $body{$pos} != ' ' &&
$body{$pos} != "\t" && $body{$pos} != "\n" &&
$pos < $j ) {
+ if ($body{$pos} == "<"){
+ $tag = '';
+ $pos++;
+ }
$tag .= $body{$pos};
$pos ++;
}
+ /*
+ A comment in HTML is only three characters and isn't
+ guaranteed to have a space after it. This fudges so
+ it will be caught by the switch statement.
+ */
+ if (ereg("!--", $tag)) {
+ $tag = "!-- ";
+ }
switch( strtoupper( $tag ) ) {
// Strips the entire tag and contents
case 'APPL':
- case 'EMBB':
+ case 'EMBE':
case 'FRAM':
case 'SCRI':
case 'OBJE':
$ret .= '<font color=#000000>';
break;
case 'BASE':
- $i += 5;
+ $i += 4;
$base = '';
+ if ( strncasecmp($body{$i}, 'font', 4) ) {
+ $i += 5;
+ while ( !isNoSep( $body{$i} ) && $i < $j ) {
+ $i++;
+ }
+ while ( $body{$i} <> '>' && $i < $j ) {
+ $base .= $body{$i};
+ $i++;
+ }
+ $ret .= "<BASEFONT $base>\n";
+ break;
+ }
+ $i++;
while ( !isNoSep( $body{$i} ) &&
$i < $j ) {
$i++;
return( "\n\n<!-- HTML Output ahead -->\n" .
$ret .
+ /* Base is illegal within HTML
"\n<!-- END of HTML Output --><base href=\"".
get_location() . '/'.
"\">\n\n" );
+ */
+ "\n<!-- END of HTML Output -->\n\n" );
}
function isNoSep( $char ) {
function stripEvent( &$i, $j, &$body, $id, $base ) {
- global $message, $base_uri;
+ global $message, $base_uri, $has_unsafe_images, $view_unsafe_images;
$ret = '';
while ( $body{$i} <> '>' &&
$i < $j ) {
+ /**
+ * [ 545933 ] Cross-site scripting vulnerability
+ * <hr>
+ * <img x="<foo>" src=javascript:alert(1) y="</foo>">
+ * <hr>
+ *
+ * This code will ignore anything within the quotes
+ * so they don't mess us up.
+ */
+ if ( $body{$i} == '"' || $body{$i} == "'" ){
+ $quotechar = $body{$i};
+ do {
+ $ret .= $body{$i};
+ $i++;
+ } while ($body{$i} != $quotechar && $i < $j);
+ }
$etg = strtolower($body{$i}.$body{$i+1}.$body{$i+2});
switch( $etg ) {
case 'src':
$src .= $body{$k};
$k++;
}
+ $k++;
while( !isNoSep( $body{$k} ) &&
$k < $j ) {
$k++;
}
+ $k++;
if ( strtolower( substr( $src, 0, 4 ) ) == 'cid:' ) {
$src = substr( $src, 4 );
- $src = "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
+ $src = "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
urlencode( $message->header->mailbox ) .
- "&passed_ent_id=" . find_ent_id( $src, $message );
- } else if ( strtolower( substr( $src, 0, 4 ) ) <> 'http' ||
+ "&passed_ent_id=" . find_ent_id( $src, $message );
+ } else if ( strtolower( substr( $src, 0, 4 ) ) <> 'http' ||
stristr( $src, $base_uri ) ) {
/* Javascript and local urls goes out */
- $src = '../images/' . _("sec_remove_eng.png");
+ if (!$view_unsafe_images) {
+ $src = '../images/' . _("sec_remove_eng.png");
+ }
+ $has_unsafe_images = 1;
}
$ret .= 'src="' . $src . '" ';
$i = $k - 2;
$name .= $body{$i++};
}
if ( $name <> '' ) {
- $ret .= "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
+ $ret .= "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
urlencode( $message->header->mailbox ) .
- "&passed_ent_id=" . find_ent_id( $name, $message );
+ "&passed_ent_id=" . find_ent_id( $name, $message );
if ( $body{$k} == '"' )
$ret .= '" ';
else
/* This function trys to locate the entity_id of a specific mime element */
function find_ent_id( $id, $message ) {
-
$ret = '';
for ($i=0; $ret == '' && $i < count($message->entities); $i++) {
-
- if ( $message->entities[$i]->header->entity_id == '' ) {
+ if ( $message->entities[$i]->header->entity_id == '' || $message->entities[$i]->header->type ) {
$ret = find_ent_id( $id, $message->entities[$i] );
} else {
if ( strcasecmp( $message->entities[$i]->header->id, $id ) == 0 )
projects / squirrelmail.git / blobdiff